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Alerting Abstract US Al 

NOVELTY - A plaintext password candidate is generated according to generation procedure same as the procedure used by a 
password guessing tool. The next password candidate is generated when the input password does not nnatch with the generated 
password candidate. The strength of the input password is determined based on the number of the generated password candidates 
when the match is determined. 

DESCRIPTION - INDEPENDENT CLAIMS are also included for the following: 

1 . a password strength checking apparatus; 

2. a program for checking password strength; 

3. a recorded medium storing password strength checking program; 

4. a password creation assisting method; 

5. a program for assisting password creation; 

6. password creation method; and 

7. a password creating program. 



USE - For checking strength of password for access approval of computer system used in office. 

ADVANTAGE - The password strength can be calculated in practical duration of time, thereby enabling accurate checking of the 
password strength and enhancing security for internal information. 

DESCRIPTION OF DRAWINGS - The figure shows the block diagram of the password strength checking apparatus. 
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ABSTRACT 



PROBLEM TO BE SOLVED: To provide a new password strength checking technique that can objectively and accurately check the 
strength of a password. 

SOLUTION: When a password to be checked is input, a plaintext password candidate is generated according to the same generation 
procedure that is used in a password cracking tool, and the generated password candidate is checked for matching against the input 
password. Upon a mismatching result, an instruction is made to generate the next password candidate, so that password candidates 
are sequentially generated until the generated password candidate matches the input password. Upon a matching result, the strength 
of the input password is decided in dependence on the number of password candidates generated, and information on the decided 
password strength is output. A numerically expressed password strength can be computed in practical time. 
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Alerting Abstract US A 1 

NOVELTY - The method involves displaying a creation table having mukiple entry fields, on a display, where each field is an input 
area for one character. Each character, composing a password to be inputted into a computer, is entered through an interactive 
process. A password input table is created by randomly entering possible characters to be used for a password, in entry fields of table 
which have no inputted characters. 

DESCRIPTION - INDEPENDENT CLAIMS are also included for the following: 



a. a password input table creating apparatus 

b. a password input table creating program used to inclement a password input table creating method. 

USE - Used for creating a password input table that is refened when inputting a password into a conqjuter (claimed). 
ADVANTAGE - The password input table shows the password in a form that is readable only by the user inputting the password 
and thereby provides a robust password which is difficult for a user to remember. The method thus avoids the necessity for writing 
the password on the paper to enter it in the computer, and provides security. 

DESCRIPTION OF DRA WINGS - DESCRIPTION OF DRAWING - The drawing shows a password input table creating apparatus. 

I Password input table creating apparatus 
10 Input/output device 

I I Routine 

1 2 Password creating program 

13 Word dictionary 

14 Password input table creating program 
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Alerting Abstract JP A 

NOVELTY - An acquisition unit acquires the user identifier information registered into a computer (1). A random password is 
generated. A trial to log-on to computer is carried out by designating the user identifier information and the random password. The 
utilization of the conputer by the user is disturbed by overwriting the random password registered after trail success. 
DESCRIPTION - INDEPENDENT CLAIMS are also included for the following: 

8. seciuity countermeasure execution method; 

9. security countermeasure execution program; and 

10. recorded medium storing countermeasure execution program. 

USE - Security countermeasure execution apparatus. 

ADVANTAGE - The problem originating in the random password is prevented. 

DESCRIPTION OF DRAWINGS - The figure shows the block diagram of security countermeasure execution apparatus. (Drawing 
includes non-English language text). 
1 computer for security countermeasure 

2- 1-2-n management computer 

3- 1-3-m user terminal 
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ABSTRACT 



PROBLEM TO BE SOLVED: To provide new password preparation technology to prepare a password whose intensity is ensured. 

SOLUTION: Under the consideration that the intensity of a password is made to correspond to the generation order of password 
candidates generated by a password presuming tool used for brute force attack, a user is made to input the intensity of the password, 
the generation order corresponding to the inputted intensity of the password is acquired, and a password is prepared by the password 
presuming tool on the basis of the result. Thus, it is possible to prepare a password whose intensity, that is, whose resistance to the 
brute force attack is guaranteed in two years, for example. Therefore, it is possible for a user to use the password without any anxiety. 

COPYRIGHT: (C)2004.JPO&NCIPI 



Your Japanese priority application 

33/5/7 (Item 7 from file: 347) 
JAPIO 

(c) 2006 JPO & JAPIO. All rights reserved. 
08086561 **Image available** 

PASSWORD PREPARATION SUPPORT METHOD AND PROGRAM 



Pub. No.: 2004-199320 [JP 2004199320 A ] 
Published: July 15, 2004 (20040715) 
Inventor: MISHIMA TAKASHI 

SANAI DAIJI 
Applicant: YAMATAKE CORP 
Application No.: 2002-366243 [JP 2002366243] 



Filed: December 18, 2002 (20021218) 
International Class: G06F-015/00 

ABSTRACT 



PROBLEM TO BE SOLVED: To provide a new password preparation support technology for analyzing which part of a password is 
strong, and which part is weak, and for outputting it. 

SOLUTION: The number of generation until a password candidate having a character string to be checked is generated at first is 
acquired by using a password candidate generating tool for generating the password candidate of a plaintext according to a 
generation procedure which is the same as that to be used by a password presuming tool, and the intensity of the character string to be 
checked is calculated according to this number of generation. Also, information showing which position of a table used for brute force 
attack is registered with each of the characters of the password is acquired, and the intensity of each of the characters of the password 
is calculated according to this information. Also, the character string whose length is lengthened by every character is extracted with 
the leading character of the password as a start character, and the number of generation until the password candidate having the 
character string is generated at first is acquired, and the transition value of the character intensity of the password is calculated 
according to this value. 
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ABSTRACT 

PURPOSE: To detect easily the foul use of a card at the device side by preparing plural password including an emergency code in 
addition to a normal password for a user and selecting optionally the right use with each password. 

CONSTITUTION: For instance, a password CI is prepared for the normal use of a user together with other codes C2-C4 used for 
emergency respectively. A password supplied from the user through a keyboard 3 is sent to a control part 5. The part 5 carries out a 
transaction as desired by the user when the code CI is supplied. If the input code is not coincident with any of those passwords CI- 
C4, the part 5 decides a keying mistake and allows the retry. While an emergency signal is produced on an emergency information 
signal line 8 consisting of a wire or wireless signal line, etc. and led to outside in case the input code is coincidence with either one of 
passwords C1-C4. At the same time, a normal transaction is permitted as desired by the user. In such a way, the probability is greatly 
rediiced for the foul use of a card. 
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Alerting Abstract WO A 1 

NOVELTY - A secret uniquely assigned to token and shared between token and authentication server, is concatenated with a count 
that increases monotonically at token, with number of one time passwords (OTOs) generated at token and increases monotonically 
at server, with each calculation of the OTP at server. A hash is calculated using concatenated secret and coimt. The OTP is obtained by 
truncating the result of the hash. 



1 



DESCRIPTION - An INDEPENDENT CLAIM is also included for method for authenticating request for access to resource, 

USE - For calculating one time passwords (OTPs) in hardware device used to verify identity of user and authenticate user for deciding 

whether to grant request for access to data or services in network. 

ADVANTAGE - The OTPs are generated by a token that includes mechanisms to prevent the unauthorized modification or disclosure 
of the software and information and to help ensure its proper functioning. 

DESCRIPTION OF DRAWINGS - The figure shows a sequence diagram explaining the authentication procedure. 
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English Abstract: 



The present invention relates to an apparatus for inputting a password and a method of inputting and decrypting a password. An 
original password (40) is composed of a password frame (42), an operator frame (44) and a shadow frame (46). The password frame is 
composed of four or more password numerals, and the shadow frame is composed of a number of numerals, which is identical to the 
number of numerals of the password frame. On a display unit, 10 numbers are randomly written at 10 addresses and displayed. An 
SPU (30) can recognize that the first numeral of a virtual password is generated by performing an operation on a number at an address 
corresponding to the first numeral of the password frame and the first nimieral of the shadow frame through an operator, and the 
remaining numerals of the virtual password are generated through the above operation. 

French Abstract: 

L'invention conceme un appareil pour entrer un mot de passe et un procede pour entrer et decrypter un mot de passe. Un mot de passe 
original (40) est compose d*une trame de mot de passe (42), d*une trame d'operateur (44) et dWe trame de protection (46). La trame de 
mot de passe est composee de quatre elements numeraux ou plus, et la trame de protection est composee d'un certain nombre 
d'elements numeraux, identique au nombre des elements numeraux de la trame de mot de passe. Sur une unite d'affichage, dix chiffres 
sont ecrits au hasard dans dix adresses et ils sont affiches. Une unite processeur secret (SPU) (30) peut reconnaitre si le premier 
element numeral d'un mot de passe virtuel est genere par une operation executee sur un chiffre d'une adresse correspondant au premier 
element numeral de la trame de mot de passe et au premier element numeral de la trame de protection par un operateur, les elements 
numeraux restants du mot de passe virtuel etant geiieres par cette operation. 
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Detailed Description: 



...SPU performs an inverse operation on condition values of the display window, which are addresses indicating whether to use a 
token value, and an arbitrary number added to the generated one- time password, thus generating values 1SS8. Through such a 
method, the SPU determines whether a virtual password, decrypted based on in-formation indicating whether the one-time... 
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Publication Language: English 

Filing Language: English 

Fulltext word count: 4194 

English Abstract: 

A method for calculating a One Time Password. A secret is concatenated with a count, where the secret is uniquely assigned to a 
token. The secret can be a private key or a shared secret symmetric key. The count is a number that increases monotonically at the 
token with the number of one-time Passwords generated at the token. The count is also tracked at an authentication server, where it 
increases monotonically with each calculation of a one-time Password at the authentication server. An OTP can be calculated by 
hashing a concatenated secret and count. The result can be truncated. 

English Abstract: 

...secret can be a private key or a shared secret synmietric key. The count is a number that increases monotonically at the token with 
the number of one-time Passwords generated at the token. The coimt is also tracked at an authentication server, where it increases 
monotonically with each calculation of a one-time Password at... 

French Abstract: 

procede de calcul d'un mot de passe a usage unique. Un secret est concatene avec un compte, le secret etant specifiquement attribue a 
un jeton. Le secret peut etre une cle prive ou une cle symetrique secrete partagee. Le confute est un nombre a croissance monotone au 
niveau du jeton avec le nombre de mots de passe a usage unique generes dans le jeton. De plus, ce compte est suivi par un serveur 



d'authentification et croit monotonement a chaque calcul d'un mot de passe unique dans le serveur d'authentification. Un mot de passe 
a usage unique peut egalement etre calcule par hachage d*un secret et d'un compte concatene. Le resultat peut etre tronque. 
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Detailed Description: 



...secret can be a private key or a shared secret symmetric key. The count is a number that increases monotonically at the token with 
the number of One Time Passwords generated at the token. The count is also tracked at an authentication server, where it increases 
monotonically with each calculation of a One Time Password at,.. 



Claims: 

...token and is shared between the token and an authentication server, and the count is a number that increases monotonically at the 
token with the number of One Time Passwords generated at the token and increases monotonically at the authentication server with 
each calculation at the authentication server of a One Time Password; 
calculating a hash... 
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Alerting Abstract KR A 

NOVELTY - A method for managing a password on the Internet and a computer device for executing the same are provided to safely 
manage multiple passwords used to each web site by using one master password. 

DESCRIPTION - A random number password generator generates a temporary password of a random number matched with a 
name of each web site inputted from a user. A real password generator generates a real password for each web site by encoding the 



unique master password inputted from the user with the temporary password as a key value. A means manages a login ID/password 
used for logging in to a password management computing device. 
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Alerting Abstract DESCRIPTION - A random number password generator generates a tenporary password of a random number 
matched with a name of each web site inputted from a user. A real password generator generates a real password for each web site by 
encoding... 

Your application 

14/5,K/2 (Item 2 from file: 350) 
Derwent WPIX 

(c) 2006 The Thomson Corporation. All rights reserved. 

0014143953 Drawing available 
WPI Acc no: 2004-328733/ 
XRPX Acc No: N2004-262269 

Password strength checking method involves generating next password candidate when input password does not match with 
generated plaintext password candidate, and calculating number of candidates when match is determined 
Patent Assignee: YAMATAKE CORP (YAMA-N); YAMATAKE HONEYWELL CO LTD (HONF) 
Inventor: ARIMOTO M; ARIMOTO N; MISHIMA T; SANAI D; SEKI E; SEKI H 



Patent Family ( 4 patents, 2 countries ) 



Patent Number 


Kind 


Date 


Application Number 


Kind 


Date 


Update 


Type 


US 20040073815 


Al 


20040415 


US 2003677277 


A 


20031003 


200430 


B 


JP 2004133720 


A 


20040430 


JP 2002298190 


A 


20021011 


200430 


E 


JP 2004199320 


A 


20040715 


JP 2002366243 


A 


20021218 


200446 


E 


JP 2004199322 


A 


20040715 


JP 2002366258 


A 


20021218 


200446 


E 



Priority Applications (no., kind, date): JP 2002366258 A 20021218; JP 2002298190 A 2002101 1; JP 2002366243 A 20021218 



Patent Details 



Patent Number 


Kind 


Lan 


Pgs 


Draw 


Filing Notes 


US 20040073815 


Al 


EN 


47 


31 






JP 2004133720 


A 


JA 


13 








JP 2004199320 


A 


JA 


16 









JP 2004199322 



JA 



11 



Alerting Abstract US Al 

NOVELTY - A plaintext password candidate is generated according to generation procedure same as the procedure used by a 
password guessing tool. The next password candidate is generated when the input password does not match with the generated 
password candidate. The strength of the input password is determined based on the number of die generated password candidates 
when the match is determined. 

DESCRIPTION - INDEPENDENT CLAIMS are also included for the following: 

1 1 . a password strength checking apparatus; 

12. a program for checking password strength; 

13. a recorded medium storing password strength checking program; 

14. a password creation assisting method; 

15. a program for assisting password creation; 

16. password creation method; and 

17. a password creating program. 



USE - For checking strength of password for access approval of computer system used in office. 

ADVANTAGE - The password strength can be calculated in practical duration of time, thereby enabling accurate checking of the 
password strength and enhancing security for internal information. 

DESCRIPTION OF DRAWINGS - The figure shows the block diagram of the password strength checking apparatus. 
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...guessing tool. The next password candidate is generated when the input password does not match with the generated password 
candidate. The strength of the input password is determined based on the number of the generated password candidates when the 
match is determined. 



Original Publication Data by Authority 



Original Abstracts: 

or not the inputted password and the generated password candidate match each other, directing generation of the next password 
candidate when the match is not determined, determining strength of the inputted password based on the number of the generated 
password candidates when the match is determined, and outputting information of the determined password strength. 

Claims: 

or not the inputted password and the generated password candidate match each other;directing generation of the next password 
candidate when the match is not determined ;determining strength of the inputted password based on the number of the generated 
password candidates when the match is determined; andoutputting information of the determined password strength. 
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English 
English 
19890 
English Abstract: 

A method of maintaining digital medical records, comprising a step of receiving a medical transaction record (102), encrypted with a 
key in accordance with a patient-file association. Also comprising a step of accessing the encrypted medical transaction record 
according to a patient association with the record (111). And further comprising a step of re-encryption of the encrypted accessed 
medical transaction record with a key associated with an intended recipient of the medical record. The system and method according 
to the present invention presents a new business model for creation, maintenance, transmission, and use of medical records. The 
invention also allows financial burdens to be reallocated optiihally and equitably, resulting in decreased overall societal cost and 
providing a successful business model for a database proprietor. Secure entrusted medical records are held in trust by an independent 
third party on behalf of the patient (1 13), and serve the medical community at large. Separately encrypted record elements may be 
aggregated as an information polymer. 

French Abstract: 

L'invention porte sur un procede de conservation de documents medicaux electroniques comprenant les etapes suivantes: reception 
d'un dossier d'actes medicaux crypte a I'aide d'un code associe au patient, acces audit dossier au moyen du code associe au patient, et 
nouveau cryptage du dossier a Taide d'un code associe au destinataire prevu du dossier. Le systeme et le procede de Finvention 
constituent un nouveau modele d'affaires servant a la creation, la gestion, la transmission, et Tutilisation de dossiers medicaux, et 
permettant de reventiler les charges fmancieres, par exemple mieux et plus equitablement, pour faire baisser les couts sociaux 
globaux, ou permettant simplement de constituer un modele d'affaires pour proprietaires de bases de donnees. Les dossiers sont 
confies en toute securite a un tiers independant agissant pour le compte du patient et servant la communaute medicale dans son 
ensemble. De plus, les elements des dossiers cryptes separement peuvent etre reunis sous la forme d'un agregat d'informations. 
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Detailed Description: 



...the currently displayed password from the SecurlD device. This information is transmitted to a security server, which authenticates 
the user and verifies that, the correct password was entered. The security server conq>ares the user-entered password with, its 
knowledge of what: password should have been entered for that 60 second period. If the password does not match, it also checks the 
password from the previous 60 second period to account for delays in typing and transmission. Once a password is verified, the user 
is authenticated for the duration of the session, or possibly... 
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English Abstract: 



Level 
Main 



English 
8146 



A method of accessing electronic resources via machine readable data embedded on a document which con^rises con^ressing input 
data with a transmitter adapted to save a first bandwidth using a compression method adapted to minimize utilization of bandwidth by 
the conpressed input data while retaining substantially all information content of the input data and appending a compression flag to 
the compressed input data indicative of the compression method enabling a receiver to decon^ress the compressed input data. The 
con^ression step further comprises utilizing a con^ression dictionary adapted to map the elements and strings of the input data to 
minimized representations having redundancies deleted. The compression dictionary may be appended to the compressed input data 
(as cleartext or cyphertext) under circumstances where a bandwidth occupied by the appended compression dictionary is less than the 
bandwidth saved by the step of compressing the input data. The compression dictionary may also be selected by the receiver 
independently from the transmitter independently indexes^ pointer registration, application restricted subsets or customized according 
to the input data content. Also the input data may be encrypted, and an encryption flag appended which is indicative of the encryption 
method enabling decryption via public or private key cryptosystems as well as utilizing various authentication techniques such as 
digital signatures to ensure that the document was created by a licensed user. 

French Abstract: 

L'invention conceme un procede d'acces a des ressources electroniques par I'intermediaire de donnees exploitables sur machine, ces 
donnees etant integrees a un document. Ce procede consiste a comprimer des donnees d'entree par Tintermediaire d'un emetteur, concu 
pour sauvegarder une premiere largeur de bande grace a un procede de con:q)ression. Ce procede permet de minimiser I'utilisation de 
cette largeur de bande par lesdites donnees d'entree con:q)rimees, tout en conservant sensiblement tout le contenu de ces donnees 
d'entree et en ajoutant un indicateur de compression a ces donnees, afin d'indiquer le procede de compression permettant a un 
recepteur de decomprimer ces donnees d'entree comprimees. Cette etape de con^ression consiste ensuite a utiliser un dictionnaire de 



compression, concu pour faire correspondre les elements et les chaines de caractere des donnees d'entree a des representations de taille 
inferieure, dont les redondances ont ete effacees. On peut ajouter ce dictionnaire de compression audites donnees d'entree comprimees 
(en tant que texte en clair ou chiffre), si la largeur de bande occupee par le dictionnaire de compression est inferieure a celle 
sauvegardee au cours de I'etape de compression des donnees d'entree, Ce dictionnaire de compression peut egalement etre choisi par le 
recepteur, independamment des indices, de Tenregistrement du pointeur, des sous-ensembles limites a une application, ou personnalise 
en fonction du contenu desdites donnees d'entree. Celles-ci peuvent en outre etre chiffrees, et un indicateur de compression ajoute, afin 
d'indiquer le procede de chif&ement suivi, ce qui permet un dechiffrement par des systemes de chiffrement a cle publique ou privee, 
ainsi que I'utilisation de diyerses techniques d'authentification telles que des signatures numeriques, qui permettent de s'assurer que le 
document a ete cree par un utilisateur autorise. 

Detailed Description: 

...With any static password based 

authentication mechanism selection of the password 

should be undertaken to provide immimity to guessing and 

dictionary attack: However, when a secure password is 

entered in cleartext over an unsecure channel, it is as 

subject to network eavesdropping as an unsecure 

password. 

An altemative scheme that prevents such 
attacks is a one-time password system. Unlike 
authentication mechanisms based on static passwords, 
those based on one-time passwords are not at all 
endangered by cleartext password entry. Three popular... 
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English Abstract: 

An imaging device mounted on a vehicle and imaging the periphery of the vehicle, the imaging device having an imaging lens, an 
imaging element, an accident detection sensor, an image processing section, and a recording section. The imaging element creates an 
image signal by photoelectrically converting a field image that is based on a light flux from the imaging lens. The accident detection 
sensor detects the occurrence of an accident based on an impact on the vehicle. When an accident occurs, the image processing section 
creates, based on the image signal, first accident image data and second accident image data where the situation of the same accident 
is stored. The recording section records both the first accident image data and second accident image data individually in conditions 
where security levels relative to data reliability are different. 

French Abstract: 

L'invention conceme un dispositif d'imagerie monte sur un vehicule et prenant la peripheric du vehicule, le dispositif d'imagerie 
possedant une lentille d'imagerie, un element d'imagerie, un detecteur d'accident, une section de traitement d'image et une section 
d'enregistrement. L'element d'imagerie cree un signal image en convertissant par photoelectricite une image de champ basee sur un 
flux lumineux de la lentille d'imagerie. Le detecteur d'accident detecte I'occurrence d'un accident d'apres I'impact sur le vehicule. 
Lorsqu'un accident se produit, la section de traitement d'image cree, en fonction du signal image, des premieres donnees d'image 
d'accident et des deuxiemes donnees d'image d'accident ou est stocke I'emplacement du meme accident. La section d'enregistrement 
enregistre individuellement a la fois les premieres donnees d'image d'accident et les deuxiemes donnees d'image d'accident dans des 
conditions ou les niveaux de securite sur le plan de la fiabilite des donnees sont diffefents. 
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Detailed Description: 



...are: BCs and the number of BCs per CU are selected in a way convenient to USER to read and reproduce at the time of 
Password/Encryption key generation. The number of CUs in a VCS is selected, ensuring the resulting number of permutations of 
CUs forming unique VCSs and the total number of Passwords/Encryption keys generated from the VCS meets the requirement of 
USER and SERVICE PROVIDER. The mathematical relationship between BCs, CUs, 445 VCS, Passwords/Encryption keys and PSI 
is... 
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Abstract EP 1634630 A 1 

The present invention provides a play extension system enhancing a fim of a toy system by use of network. The play extension system 
(SY2) is used by combination with the toy system (SYl) in which a user can change the setting of parameters affecting motion control 
of a driving machine (1), for extending a playing method with the toy system (SYl). In the system (SY2), the setting information 
corresponding to the setting state of the parameters is received from a predetermined user terminal (120) through a network (100), and 
estimation on the obtained setting information is created by referring to a database (112) which stores the setting information and the 
information for estimating the setting state correspondingly. The created estimation is transmitted to a predetermined destination 
through the network ( 1 00). 

Abstract Word Count: 131 
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NOTE: Figure number on first page: NONE 
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Specification: ...beginner cannot operate it well. 

Therefore, on the side of a provider, the operating characteristic is estimated on every setting state specified by all the possible 
passwords, and the setting database 1 12 is built for storing information of estimation so as to be associated with the respective 
passwords. Thus built setting database 1 12 is used for checkmg the setting state by a user. The estimation information is created as 
the sentence information for expressing the... 
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A data processing system, program and method are disclosed for managing a public key cryptographic system which includes a public 
key, private key pair generator. The method includes the step of generating a first public key, private key pair using a first seed value 
known to a user, the first seed value being generated fi:om a passphrase. A first random number is generated using the first seed value 



and applied to generating the first key pair. The method then generates a first control vector defming a first use of the first public key, 
private key pair. 

The method then continues with the step of generating a second public key, private key pair using a second seed value unknovsoi to the 
user, the second seed value being a true random number. The second random number is generated using the second seed value in a 
pseudorandom number generator and applied to generating the second key pair. The method generates a second control vector 
defining a second use of the second public key, private key pair. 

The method then controls the use of the first public key, private key pair using the first control vector and controls the use of the 
second public key, private key pair with the second control vector, (see image in original document) 
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Specification: ...phrase. The passphrase testing 302 may be implemented in the form of a passphrase filter. 

The passphrase filter is a routine for rejecting "bad' user-constructed passphrases, i.e., passphrases that an adversary might 
potentially discover by using an exhaustive, directed search. At the time a potential passphrase is generated, the passphrase filter is 
invoked and the passphrase is provided as a parameter input. Using a dictionary of standard English containing the 10,000 most 
frequently used... 
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Set Items Description 

51 8618 S PASSWORD? ? OR PASSCODE? ? OR PASSPHRASE? ? OR PASS()(WORD? ? OR CODE? ? OR PHRASE? ?) 

52 498 SSI (5N) (MATCH?? OR MATCHING) 

53 272 SSI (5N) (BREAK??? OR BROKEN OR IDENTIFY OR IDENTIFIED OR DISCOVER?? OR (FOUND OR 
FIND)()OUT OR DETERMINE? ? OR ASCERTAIN?? OR GUESS?? OR DEDUCE? ? OR (WORK OR FIGURE OR FIND)()OUT 
OR DISCOVER?? OR DETERMINE? ? OR STOLEN OR STEAL OR EXTORT?? OR. ATTACK??) 



S4 



322 S SI (3N) (GENERATED OR AUTOMAT? OR CANDIDATE? ? OR RANDOM) 



55 25 S (NUMBER OR COUNT OR QUANTITY OR HOW()MANY OR TOTAL)(3W)S4 

56 2 SS5 (ION) (PERIOD? OR DURATION?? OR TIME) 

57 0 SS5{10N)(S2ORS3) 

58 750 S (NUMBER OR COUNT OR QUANTITY OR HOW()MANY OR T0TAL)(3W)S1 

59 68 S S8 (ION) (PERIOD? OR DURATION? ? OR TIME OR S2 OR S3) 

5 1 0 302 S S 1 (5N) (STRENGTH OR STRONG?? OR GOOD OR HIGH()QUALITY OR INTENSITY OR RESISTANCE OR 

VULNERABL? ? OR SECURE OR SECURITY ) 

511 3 SS9ANDS10 

512 ^ aJiiiMl 

5 1 3 743 S (NUMBER OR COUNT OR QUANTITY OR HOWQMANY OR TOTAL) (3 W) (COMBINATION? ? OR 

PERMUTATION? ? ) 

514 6 SS13ANDS1 

5 1 5 38 SSI (3N)(PR0P0SED OR POSSIBLE? ? OR POTENTIAL? ? OR VIABLE? ? OR FEASIBLE OR FEASIBILITIES 
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5 1 6 42485 S 1 (3N) (PRODUCE? ? OR CONSTRUCT?? OR BUILT OR PREPARE? ? OR GENERATED) 

517 214 S (NUMBER OR COUNT OR QUANTITY OR HOW()MANY OR TOTAL)(3W)(S16 OR S4) 

518 354723 S RATIO OR RATIOS OR PERCENTAGE? ? 

519 4 SS18(10N)(S14ORS15ORS17) • 

520 4 SS19NOT(S6 0RS12) 

52 1 4 IDP AT (sorted in duplicate/non-duplicate order) 

522 4 IDP AT (priinary/non-duplicate records only) 
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ABSTRACT 



PROBLEM TO BE SOLVED: To provide an electronic lock device, with which unlocking is remotely enabled by using a telephone 
set and security can be improved. 

SOLUTION: The password number for unlocking of (m) digits is inputted to extension telephone sets 3 l-3n and a password signal 

for unlocking is outputted. When the instruction signal part of an identification signal part indicating unlocking of the first digit in the 
head of the password signal for unlocking is received, in an extension telephone unlocking device 5, an extension telephone 12 for 
visitor reception is electrically disconnected from an extension telephone line 1 1 and the designation signal part and the password 
signal part of the identification signal part after the second digit are fetched. In the extension telephone unlocking device 1, it is judged 
whether a preset password number and the password number of the password signal part match or not. When the password 
numbers match, corresponding electronic locks 81 and 82 are unlocked for fixed time and a collated result matching signal is sent to 
the extension telephone sets 3 l-3n, to which the password signal for imlocking is inputted. 

COPYRIGHT: (C)2003,JPO 
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PROBLEM to BE SOLVED: To provide an authentication device or the like capable of ensuring higher level security. 

SOLUTION: A random number is generated (S201), and the combination of numerals and alphabets is decided, based on the 
generated random number (S202), and the combination of the numerals and alphabets is displayed (S204). A user recognizes the 
displayed contents, and inputs four alphabetical characters, corresponding to a password constituted own four digit numeral from a 
microphone. A control part fetches them (S205) and executes character recognition (S207). Whether or not all the characters, that is, 
those four characters can be recognized is discriminated (S208), and when it is determined that all the characters can be recognized, 
that is that the four alphabetical characters are converted into foiur-character numer based on the corresponding relation of the 
numerals and the alphabets (S209). Moreover, whether or not the converted four numerals are matched with the password of the user 
stored in a password storage part is discriminated (S2 1 0). 
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ABSTRACT 

PURPOSE: To provide a robbery preventing device which can inq)rove robbery the robbery preventing effect by increasing the 
number of combinations of password codes and without increasing the number of operating switches and also can eliminate a 
complicated input operation for electronic equipments. 

CONSTITUTION: A robbery preventing device collates the password code inputted from an external input means with the codes 
stored in an intemal memory and sets the usable/unusable state of an electronic equipment. Then the external input means of 
password codes consists of an item selector means which selects plural items and a numerical value setting means which sets the 
numerical value of each item in plural steps. In particular, these selector means end setting means serve as an acoustic control mode 
changeover switch 6 and a volume controller 3 or a bend changeover switch 5 which selects a receiving frequency band and a preset 
switch 4 which stores the receiving frequency respectively. 
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ABSTRACT 

PURPOSE: To keep secret even if a password is leaked to the others, by collating the preliminarily registered password consisting of 



plural digits and intervals of input time of respective digits as parameters to increase the number of combinations of the password. 



CONSTITUTION: Intervals of input time of respective digits of the password consisting of plural digits inputted from a peripheral 
device 3 are counted by a time counter 3. Preliminarily determined intervals of input time of respective digits of the password 
consisting of plural prescribed digits are registered in a register file 5 with an allowable time width. A collating part 6 collates not only 
the password consisting of plural digits inputted from the peripheral device 3 but also intervals of input time of respective digits with 
preliminarily determined intervals of input time of respective digits. Since intervals of input time of the password are used as 
parameters, intervals of input time are on the outside of the input allowable range as the collation result and coincidence is not attained 
though the others obtains and uses the password, thus keeping the secret. 
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A major problem in computer seciuity is intrusion into systems due to conpromised authentication procedures. This paper focuses on 
the most commonly used authentication procedure—use of passwords. We have developed a framework for a methodology to estimate 
the guessability of passwords. We assiune that passwords are usually based on a simple rule. If someone discovers one of a series of 
rule-based passwords, it is easier to guess other passwords. The framework we propose is that computer security experts can conduct 
guessability studies on a large number of passwords which are candidates for assignment to users. People who attempt to guess 
what a password is can be provided with cues, such as what a password for another account in the system is or a nickname. Hit rates 
(the percentage of passwords correctly guessed within a limited number of attempts) can then be obtained. This method can be used to 
develop metrics for guessability .of classes of passwords. A system manager might utilize results of guessability studies by 
encouraging users to avoid choosing passwords which are closely associated with account names or which have been shown to be 
highly vulnerable to guessing, or by not assigning passwords which are from vulnerable classes of passwords. A pilot study confirmed 
the feasibility of this framework. Participants were given 20 attempts to guess an eight-character password which was either a 
common English word or two unrelated words joined by a control character (eight characters in all). The common English word was 
vulnerable to guessing, but only when cues about this word were provided. Participants never guessed the other password, however, 
even when cues were provided. The results not only demonstrate feasibility of our framework, but also suggest guidelines for selecting 
passwords which are less likely to result in compromised authentication procedures. 6 refs., 1 fig. (ERA citation 13:055993) 
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...through a dictionary program to make sure that the password is not a 
valid English word. 

Use long passwords. The number of characters in a password 
determines how many random combinations of 
characters a hacker (or hacking program) has to try in a brute-force 
atten^t to guess it. The more characters used, the more... 
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...lists of words, including the standard online dictionary, name lists, 
and combinations of four-digit numbers (standing for the last four digits 
of a social security number), as potential 

passwords. It compared them against the actual passwords stored in 
the system file and gained access whenever a match was found. 

Because the use of passwords... 
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of possible personal combinations is 1 .5 quadrillion. 
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...is sent to the system administrator. This may thwart an intruder who 
attempts a break4n using a computer to automatically generate and try a 
large number of ID/password combinations. 

Even with this added security, a hacker who has access to the system 
may copy the password-authentication files and gain access to all 
passwords. Network and host security systems have become 
smarter and encrypted the password files, but this has not completely 
stopped criminals from breaking in. One creative hacker processed a 
con^uter... 
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TEXT: 

... to help federal agents track terrorist or other criminals' message 
traffic, but hackers use similar tools. Some can be remotely installed 
to get someone's password by watching network traffic," Bradley 
said. 

~ Password crackers^-automated tools that extract 
encrypted passwords. Some are ''brute-force" programs that try all 
letter and number combinations to get a match. The course 
teaches students what makes a strong password and will take 
considerable time to crack. 

— Rootkits—tools that alter security and system logs to 
hide a hacker's presence. ' They ensure a hacker... 
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Alerting Abstract JP A 

NOVELTY - A CPU (11) determines whether each character code of input password coincides with a reference password, and detects 
coincidence state that shows grade of coincidence. The CPU prescribes a useable function based on the detected coincidence state. 
DESCRIPTION - An INDEPENDENT CLAIM is also included for password authentication method. 
USE - For mobile telephone, navigation system, hands-free apparatus. 

ADVANTAGE - Enables simplifying the operation, by accepting each function selectively and usably. Prevents releasing of security 
by other, easily. 

DESCRIPTION OF DRAWINGS - The figure shows the structure of the password authentication apparatus used in hands-free 
system. (Drawing includes non-English language text). 
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10 memory 

II CPU 
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English Abstract: 

Systems and methods for authentication of a user by an identification center are disclosed. A preferred embodiment of the invention 
includes the transfer over a commimication medixmi of an encryption key to the user and/or the identification center, receipt by the 
identification center of a password encrypted by the user, simulation by the identification center of the encryption, comparison of the 
simulated encrypted password(s) with the received encrypted password, and authentication of the user if comparison results are 
sufficient. In another aspect of the invention, the encryption key is outputted by an identification center terminal and manually 
inputted into a user terminal. 

French Abstract: 

L'invention conceme des systemes et des procedes d'authentification d'un utilisateur par un centre d'identification. Un mode de 
realisation prefere de cette invention conceme le transfert par I'intermediaire d'un support de communication d*une cle de cryptage 
vers Tutilisateur et/ou le centre d'identification, la reception par le centre d' identification d'un mot de passe crypte par I'utilisateur, la 
simulation par le centre d'identification du cryptage, la comparaison du(des) mot(s) de passe crypte(s) simule(s) avec le mot de passe 
crypte recu et Fauthentification de Tutilisateur dans le cas ou les resultats de la conparaison s'averent suffisants. Selon une autre 
variante, la cle de cryptage est foumie par un terminal de centre d'identification et entree manuellement dans un terminal utilisateur. 
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Detailed Description: 



...necessarily the comparison results are sufficient to authenticate a user if one simulated encrypted password can be singled out as 
corresponding to the received encrypted password. 

In one embodiment, as part of the comparison, a score is assigned to each simulated encrypted password and the simulated encrypted 
password with the best score, i.e. the closest match to the received encrypted... 
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An interactive client-server authentication system and method are based on Random Partial Pattem Recognition algorithm (RPPR). In 
RPPR, an ordered set of data fields is stored for a client (1010) to be authenticated in secure memory. An authentication server (1030) 
presents a clue to the client via a communication medium (1020), such positions in the ordered set of a random subset of data fields 
from the ordered set. The client enters input data in multiple fields according to the clue, and the server accepts the input data from the 
client via a data communication medium. The input data corresponds to the field contents for the data fields at the identified positions 
of the random subset of data fields. The server then determines whether the input data matches the field contents of corresponding data 
fields in a random subset. 
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Specification: ...WhiteFlower 12. Root: Z. Meter - field number before "Z" and behind "Z": oneZone, twoZtwo, threeZthree, 
nineZnine. 

These patterns are as easy to remember as 4 character PINs / passwords. However, the combinatorial security is a great deal of 
stronger for the RPPR based technology, as compared with SSPR algorithm based security systems. 

Fig. 10 illustrates a client/server system including authentication resources according to the present invention. The client subsystem 
1010... 
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A computing entity comprises a trusted monitoring con^onent having a first processing means and a first memory means, the trusted 
monitoring component being a self-contained autonomous data processing unit, and a computer platform having a main processing 



means and a main memory area, along with a plurality of associated physical and logical resources such as peripheral devices 
including printers, modems, application programs, operating systems and the like. The computer platform is capable of entering a 
plurality of different states of operation, each state of operation having a different level of security and trustworthiness. Selected ones 
of the states comprise trusted states in which a user can enter sensitive confidential information with a high degree of certainty that the 
computer platform has not been compromised by external influences such as viruses, hackers or hostile attacks. To enter a trusted 
state, references made automatically to the trusted component, and to exit a trusted state reference must be made to the trusted 
conq)onent. On exiting the trusted state, all references to the trusted state are deleted from the computer platform. On entering the 
trusted state, the state is entered in a reproducible and known manner, having a reproducible and known configuration which is 
confirmed by the trusted component. 
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Specification: ...In order to make changes to the menu, various levels or security may be applied. For example, a user may be required 
to enter a secure password, for example a password comprising numbers and letters or otiier characters in step 1202. The trusted 
component monitors the trusted state from which the trusted component can be reconfigured by comparing measured integrity 
metrics fi-om the conq)uter platform whilst in the trusted state, with the set of pre-stored integrity metrics which the trusted con^onent 
stores... 
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English Abstract: 



An electronic/mechanical password locking/security system equipped with internal hacking protection program using time-interval is 
disclosed. The electronic/mechanical password locking/security system comprises a custom semiconductor device (10) including a - 
sequential comparator (14) for comparing an input password to a pre-stored password sequentially, a memory device (12) for storing 
an existing password and altering it, a timer (15) for outputting the existing password according to a predetermined time information, a 
clock/oscillator (16) for generating a basic time information of the system, an input buffer (13) for storing the input password and 
outputting the input password to the sequential comparator (14) according to a predetermined time information and a controller (11) 
for controlling and supervising the custom semiconductor device (10), According to the present invention, the system can maintain 
security using a time information between each character as well as a character information of input password even if a password is 
revealed, and maximize the security by adding a simple circuit to the conventional kinds of devices requiring security such as a 
mechanical locking device, a financial institution application, home, a military application and a satellite communication systenL 

French Abstract: 

L'invention porte sur un systeme electromecanique de blocage et securisation d'un mot de passe a programme interne de hachage a 
intervalles de temps. Ledit systeme comporte: un dispositif semi-conducteur adapte (10) con^ortant un comparateur des sequences 
(14) du mot de passe introduit avec celles du mot de passe preenregistre; une memoire (12) stockant un mot de passe existant et le 
modifiant; un minuteur (15) emettant le mot de passe existant selon une information temporelle predetermine; une horloge (16) 
fournissant la base de temps du systeme; un tampon d'introduction (13) stockant le mot de passe introduit et le transmettant au 
conparateur (14) en fonction d'une information temporelle predeterminee; et un controleur (1 1) de conunande et supervision du 



dispositif semi-conducteur adapte (10). Ledit systeme assure la securite en utilisant une information temporelle entre chaque caractere 
ainsi qu'une information sur les caracteres du mot de passe introduit, meme s'il est revele, la securite etant encore accrue par 
I'adjonction d'un circuit simple a des dispositifs classiques devant etre securises tels que les dispositifs a blocage mecanique, les 
applications relatives a des etablissements financiers, les applications domestiques, les applications militaires, et les systemes de 
communication par satellite. 
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Detailed Description: 



...or counter. 

Further, the present invention can be applied to a computer network system 2 0 hacking security device using a time information 
between each character of the input password when the user enters the password, a device for inqjroving the security by 
sequentially comparing the 
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A method for simplifying the use and enhancing the storage security of non-fixed passwords is disclosed. It makes use of multiple 
passwords pi)), pn)) and (n,m)-threshold schemes for storing the passwords on an access control medium and conq>rises: 
requesting the user to choose and enter n passwords pi)), pn)) and computing n - m s check values cl)),..., cs)) for m < n from 
the n passwords pi)), pn)) using a fixed (n x s)-matrix H; computing a one-way hash value c of the concatenation of pi)), pn)) 
and storing the values cl)),..., cs)) and c; requesting the user at a subsequent login to enter m passwords pnl))))&hairsp;'),..., 
pnm))))&hairsp;') and computing the missing n-m = s passwords pl))&hairsp;') pnl))-l))&hairsp;') , pnl))+l))&hairsp;*) 
pnm))-l))&hairsp;') ,pnm))+ 1 ))&hairsp;') ,...,pn))&hairsp;*) from these passwords and the check values cl)),..., cs)); computing a hash 
value c' of the concatenation of pi))*, pn))', comparing the values c and c* and accepting the passwords if c = c'. Optionally, the 
method can provide for entering the m passwords at the subsequent login in any order. Furthermore, the values cl)),..., cs)) can be 
encrypted before storage and decrypted again before computing the missing n - m = s passwords pl))&hairsp;'),..., pnl))-l))&hairsp;'), 
pnl))+l))&hairsp;'),...,pnm))-l))&hairsp;'),pnm))+l))&hairsp;'),...,pn))&hairsp;'). Finally, a keyed one-way hash function F (message 
authentication code) can be used and the matrix H can be kept secret for additional protection. 
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Specification: ...proposal regarding the fu*st requirement, i.e., handling and organizing a plurality of different passwords for different 
applications, results in the following scheme: once a "good" password has been chosen, one or two of its characters are replaced by 
codes for the function of the password or by letter(s) of the name of the system the password is valid for - e.g., the chosen password 

Tbgw#D( vertical bar)3 is replaced by Tbg + (1st) letter of host) + #D(vertical bar) + (3rd bar)3 -> ... Finally, many proposals to 

meet the third requirement, i.e., creating a "hard" password, have been made. According to these proposals, a good password should 
include: lower and upper case letters, numbers, special characters like punctuation marks arid mathematical symbols and extended 
ASCII characters. Proposed methods for generating a hard password include: using two unrelated words, pronounceable nonsense 
words... 
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Password entering method for e-banking system e.g. automatic teller machine, involves receiving codes corresponding to 



characters entered by user while concealing entry on number of keys less than number of symbols 
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Alerting Abstract US B 1 

NOVELTY - The method involves displaying distinct codes corresponding to characters in a users password. The codes entered 
serially by the user are received while an entry on a number of keys less than a number of symbols are concealed. The codes are 
entered as a number of key hits. The user enters each digit of a password by pressing a key a number of times corresponding to the 
digit. The digit entry is terminated by pressing another key. 
USE - Used in e-banking system e.g. automatic teller machine (ATM). 

ADVANTAGE - The method requires only few keys for concealing the keys, thereby preventing viewing of key entry during 
password entry. The method is very secure from password detection by casual observation of key hits during password entry. The 
method can coexist wit conventional password entry schemes as an option to be used when absolute security is required. 
DESCRIPTION OF DRAWINGS - The drawing shows a pictorial view depicting concealment of keys to prevent videographing. 
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Password authentication used on e.g. mobile telephone, involves pressing definition and direction keys to select character 
scroll on shown scroll areas and display characters recognized as password 
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Alerting Abstract JP A 

NOVELTY - The method involves pressing definition keys (20) and a direction key (21) to select character scroll on the shown scroll 
areas (1 1-15) and display characters which are recognized as a password. The scroll areas show classified characters. The direction 
key can be used to transfer from one scroll area to another. 

USE - Used in e.g. mobile telephone, personal digital assistant (PDA), personal handyphone system (PHS) terminal, portable personal 
computer. 

ADVANTAGE - Ensures easy character input through simple key operation and correct confirmation of selected characters 
recognized as password. Maintains network security and single operation without complicating network structure. 
DESCRIPTION OF DRAWINGS - The figure shows the structure of the mobile telephone to which password authentication is 
applied. Drawing includes non-English language text. 
11-15 Scroll areas 

20 Definition keys 

21 Direction key 
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Method of approving password in which each user has profile which specifies whether particular user's password should 

contain character from special subset of characters 
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Alerting Abstract WO A 1 

NOVELTY - Each user's profile includes an item specifying whether that particular user's password must contain one character 
selected from a set of special characters. This enables particularly important or secure users to have passwords including a wider 
range of characters and thus to be more difficult to break. 

DESCRIPTION - An INDEPENDENT CLAIM is included for a system for approving a password. 

USE - In data processing or information systems, in which used identifier is associated with a user profile. 

ADVANTAGE - Provides additional security selectively for those users who require it. 

DESCRIPTION OF DRAWINGS - The drawing illustrates a flowchart of operation of the embodiment of the invention. 

Title Terms /Index Terms/Additional Words: METHOD; APPROVE; PASSWORD; USER; PROFILE; SPECIFIED; CONTAIN; 



CHARACTER; SPECIAL; SUBSET 
Class Codes 



International Patent Classification 



IPC 


Class 
Level 


Scope 


Position 


Status 


Version Date 


G06F-001/00; H04L; H04L- 
009/32 






Main 




"Version 7" 


G06F; G06F*012/14 






Secondary 




"Version 7" 



US Classification, Issued: 713202000, 713183000 

File Segment: EPI; 
DWPI Class: TOl 

Manual Codes (EPyS-X): T01-H01C2; T01-J12C 



28/5/5 (Item 5 from file: 350) 
Derwent WPIX 

(c) 2006 The Thomson Corporation. All rights reserved. 

0009639605 Drawing available 
WPI Acc no: 1999-591479/ 
XRPX Acc No: N 1999-436326 

Key generation from a given string to provide a password for network entity authentication 
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Alerting Abstract CA A 

NOVELTY - A process for generating an encryption key form a bit stream for a given character string comprises applying, at least 
repetitively, a combination of at least two bit stream processing operations. These are selected from a group of operations including bit 
stream splitting, recording and shuffling, bit-wise operations, and one-way hashing. 

USE - For providing a scheme for generating a symmetric encryption key from a given string, such as a password, which can be used 
for network authentication. 

ADVANTAGE - Passwords have no character limitation on the length or content of the given character string. This results in 
in5)roved security and makes the password easier to remember for the user. 



DESCRIPTION OF DRAWINGS - The drawing is a flow diagram illustrating a bit stream process used. 
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Computer program for forming pronounceable security password used in encrypting and decrypting messages - is configured 
to generate pronounceable security password of eight characters or more including first word segment, if consecutive 
characters of first word segment is determined to be acceptable 
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Alerting Abstract US A 

The computer program is configured to be readable from a computer readable storage medium and thereby causing a computer to 
operate so as to select a first one of the first and second word segment portions from the respective segment portions with equal 
probability. The selected first and second word segment portions are combined to form a first pronounceable word segment. 
A judgement process then performed to check whether consecutive characters of the first pronounceable word segment are 
unacceptable due to their correspondence to those of fu-st word segment portions having a transition number less than a first threshold 



transition number. If the consecutive characters are determined to be acceptable, a pronounceable security password of eight or 

more characters including the first pronounceable word segment is generated. 

ADVANTAGE - Generates user friendly pronounceable passwords which provide greater security. 
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...Web access-monitoring software, is nearing completion of its BioPassword 
software, which adds extra security to ordinary password systems. 



BioPassword works hy monitoring both the rate of typing and 
intervals between letters— the keystroke dynamics. Even if intruders 
guess the correct password, they probably cannot type it in with the 
proper rhj^thm unless they heard and memorized someone's key clicks. 

BioPassword is scheduled for release sometime... 



